Weekly Assignment three

profilepcheedella
Discussion.docx
Home>Information Systems homework help>Weekly Assignment three

Topic:  Discuss the challenges that incident handlers face in identifying incidents when resources have been moved to a cloud environment.   

Follow up your discussion with a recent article discussing a company who has begun utilizing a cloud environment and what challenges they may face.  Make sure to cite the article.

DQ requirement: Note that the requirement is to post your initial response no later than Thursday and you must post one additional post during the week (end of Sunday). I recommend your initial posting to be between 200-to-300 words. The replies to fellow students and to the professor should range between 100-to-150 words. All initial posts must contain a properly formatted in-text citation and scholarly reference.

 

Customer Issues with incident detection in the cloud.

No access to CSP-controlled event sources and vulnerability information:.the customer typically only has access to events generated by his own application (e.g., via application logging) the provisioning of virtual servers which is in control of the customer. But the underlying virtualization infrastructure (through which an attacker might be able to attack the virtual server of a customer) connects to virtual servers in control of CSP.

Interfaces often are insufficient for integration of the available data into event monitoring systems. With IaaS, customers usually will be able to access event information from virtual servers in a way suitable for automated processing, but for all CSP-controlled data, the same problem is arise as for SaaS and PaaS occurs.

Misdirection of abuses/incident reports

In this the cloud business model leads to a situation where it is often unclear for a third party, to whom abuse/incident reports should be directed. Reports that actually concern a customer may be reported to the CSP instead e.g. in IaaS scenarios, incident reports regarding abusive traffic from a certain IP address will be directed to the CSP rather than the customer whose virtual server has been causing the abusive traffic[1,7]. Because of resource pooling, it may be difficult for the CSP to find out, to which of his customers the report refers. Conversely, incident reports to a customer may actually be relevant to the CSP and its customers.

Dropbox is the most popular storage services start on AWS

1. Data Security: Since 2018, security has become primacy and valid concern of cloud technology, customers not aware of where the data stored or processed. We should be mindful of security practices following by cloud providers. How the data is getting stored and encryption. Process for data at rest and in motion. Also, know the regulation the provider complaint with.

2. Compliance: Another issue with cloud computing is Compliance. Whenever data getting a transfer from internal storage to the Cloud faces Compliance with regulation and laws.

3. Control or Governance: it is difficult to achieve complete control on IT operation, provisioning, and infratstrure delivery when the business moved on the Cloud resulted in unable to providing necessary Governance, compliance risk, and quality are getting complicated.